Name: How to evaluate your active risk to prevent a breach versus just potential risk
Start: 2021-06-29T16:00:00Z
End: 2021-06-29T16:00:48.000Z
Location: BrightTALK
Rating: 4.2

See cyber attacks from the vantage point of threat actors and prevent breaches before they happen.  Prevailion is a next-generation cyber intelligence company protecting global organizations by providing unmatched insights into the real-time threats targeting their networks.  


Join our expert CISO, Bryan Littlefair, Chief Executive Officer of Cambridge Cyber Advisers (CCA) and Nate Warfield, CTO, Prevailion for a lively debate on the future of security validation and threat detection from their perspectives.

In this session they will be discussing:

Exploring the best methods for replicating real attacks on your infrastructure.
Demonstrating the effectiveness of your detection technology and teams’ capabilities.
Highlighting critical improvements that can prevent compromise and breaches occurring.

The future of security validation and threat detection

In this session, Jon Oltsik, Senior Principal Analyst & ESG Fellow, ESG Research and Karim Hijazi, CEO Prevailion will be discussing a new approach to monitoring with counterintelligence; compromise intelligence.  This new category drastically improves any organization's response time in the battle to protect against breach and strengthen overall security operations. 

Join us for this session as we focus on:
- Supply chain partners impact on breaches
- XDR and why it is too slow and noisy
- Potential Risk of Partners vs. Actual Compromises

Cover what is Compromise Intelligence:
a. What does it deliver? Evidence of Compromise
b.	 How does it help SOC teams with XDR?
c.	How does it help with supply chain?
d.	How is it different
e.	How does it fit in with a security stack?

Using Counterintelligence to Monitor for Compromises and Accelerate Response

Adversaries are constantly finding ways to thwart even newer layers of defenses being implemented. With this understanding, equal importance is placed on fast detection, isolation and remediation. A better approach is continuous testing and refining of organizational security controls and playbooks. Transitioning to an assumed risk model means it is paramount to discover the threat already inside, and also continuously assess and refine organizational security controls to lower future risk. 

In this session you'll learn:

- External counterintelligence which provides increased visibility into undiscovered compromises.  
- Investigation and validation of security gaps enabling an attacker to breach your existing environments and even increase your supply chain risk.
- Lowering risk by implementing new approaches to constantly refine security controls and accurately assess security gaps.

Eliminating Security Gaps Through Adversarial Counterintelligence?

Looking at the threat horizon for 2022, it’s clear that the digital world has moved even closer to the physical world than before.  Remote work is the new normal.  On the global scale cyberattacks are the fastest growing crime. Threat actors are seizing the opportunity to cause disruption in an industry still navigating the effects of a worldwide pandemic. The good news is organizations are more aware of the risk that poor cyber hygiene presents.  In fact, many organizations have started to invest heavily in cybersecurity training and awareness programs to combat cybercrime and prevent breaches from occurring.

In this session we’ll explore:
- Current State of Cybersecurity
- The Effects of COVID on Cybersecurity
- Cybersecurity Risks for 2022 and How to Prevent Them

Moderated by: 
Jo Peterson, Vice President, Cloud and Security Services, Clarify360
Panelists: 
Karim Hijazi, CEO and Founder, Prevailion
Chuck Brooks, President of Brooks Consulting and an Adjunct Professor on cybersecurity at Georgetown
Thomas J. Sweet, Vice President, Cloud Services, GM Financial

Panel: Threat Horizon 2022

The Prevailion Adversarial Counterintelligence Team (PACT) has been assisting the security community in tracking the Ghostwriter operation, a long-running and broad-focused disinformation operation in Europe attributed to the Russian state. 
PACT analysis revealed clusters of activity dating back to 2019 and 2020 that represented additional targeted audiences, as well as current phishing infrastructure that appears designed to steal credentials from strategic targets in the national security, defense, and commercial sectors.
In this webinar, we’ll discuss the latest discoveries our team had made in this ongoing campaign, tactics that are being used, how the campaign stays hidden, and what indicators and evidence can be used to help organizations prevent damage from Ghostwriter.

Tracking the Ghostwriter

A previously impossible challenge for organizations has been gaining any visibility into malware compromises that leverage dynamic and ephemeral addressing behind ISPs and Cloud providers in order to hide attack campaigns. 

What if you could monitor and track malware activity through the provider haze, right down to the compromised asset on both ends - regardless of being hidden behind the cloud, ISP or even your own external perimeter? 

Consider that remote workers often are using systems that are connected to vulnerable home systems, video game consoles etc. The opportunity for cross-infection of corporate networks is seriously extensive. 

In this session, learn how:

• New techniques and approaches to monitoring cloud networks and how to gain visibility into malware compromises 
• Seeing past the ISP which have typically obscured security teams from seeing attack activity, especially when unable to employ remote agents.
• The rise of encrypted traffic means a loss of visibility from security tools, therefore focusing on external intelligence is fundamental in understanding the threat landscape.

Monitoring and Hunting for Malware Through the Cloud and Down to Remote Workers.

In this session, Jon Oltsik, Senior Principal Analyst & ESG Fellow, ESG Research and Karim Hijazi, CEO Prevailion will be discussing a new approach to monitoring with counterintelligence; compromise intelligence.  This new category drastically improves any organization's response time in the battle to protect against breach and strengthen overall security operations. 

Join us for this session as we focus on:
- Supply chain partners impact on breaches
- XDR and why it is too slow and noisy
- Potential Risk of Partners vs. Actual Compromises

Cover what is Compromise Intelligence:
a.	What does it deliver? Evidence of Compromise
b.	 How does it help SOC teams with XDR?
c.	How does it help with supply chain?
d.	How is it different
e.	How does it fit in with a security stack?

100% Signal – 0% Noise

What if you could peer into the future and stop emerging security threats, before they can harm your company?
With Prevailion’s new flagship offering, Axis Intelligence: Global, enterprises and security firms can do precisely that. Axis Intelligence: Global provides actionable, detailed information on confirmed early-stage cyber attacks that are occurring in organizations worldwide.

Instant, actionable intelligence on the cyber threats that matter most.

Active Risk Is the Path to Getting PWNED by Ransomware.

The detection and identification of vulnerabilities in the course of establishing “root causes” of hacks, attacks, and compromises has been at the forefront of conversations related to the threat landscape for the better part of the last two decades. The question today, based on the current explosion of attack activity and challenges with establishing risk, is whether or not it is prudent to focus too heavily on vulnerabilities or if it makes more sense to pivot focus on responding to actual active compromises.

In this webinar we'll discuss:

-	Understanding the limits of vulnerability intelligence in lowering your active risk
-	How to use compromise intelligence to detect and respond to active risks already in your environment
-	Gain continuous visibility into supply chain risks versus subjective and point-in-time risk scoring

How to evaluate your active risk to prevent a breach versus just potential risk

Cyber Defence

Cyber Intelligence

Cyber Attacks

Cyber Incident Response

Cyber Crime

Malicious Activity

Malware

Anti Malware

Ransomware

Risk Mitigation

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

How to evaluate your active risk to prevent a breach versus just potential risk

Presented by

About this talk

More from this channel